Security Analyst Consultant jobs in United States
info-icon
This job has closed.
company-logo

Jobs via Dice ยท 4 days ago

Security Analyst Consultant

positionColumbia, SC
timeContract
remoteOnsite
senioritySenior Level
date5+ years exp

Dice is the leading career destination for tech experts at every stage of their careers. Our client, Refulgent Technologies Inc., is seeking a Senior Information Systems Security Officer (ISSO) to lead security, risk, and compliance initiatives for the South Carolina Department of Health and Human Services. This role focuses on enhancing cybersecurity and compliance programs aligned with federal standards.

Computer Software

Responsibilities

Lead and support daily security and compliance operations for complex systems
Establish, implement, and mature security programs aligned with federal and state regulations
Develop and maintain RMF/A&A artifacts including:
System Security Plans (SSPs)
Privacy Impact Assessments (PIAs)
Interconnection Security Agreements (ISAs)
Computer Matching Agreements (CMAs)
Perform architectural security reviews and risk analysis, including:
Network design and data flow
System and data access models
Firewall rule reviews (ports, protocols, services)
Configuration deviation requests
Vulnerability management
Audit and assess internal systems and third-party/vendor environments
Review security and compliance aspects of:
Contracts
Business Associate Agreements (BAAs)
Data sharing agreements
Serve as primary point of contact for third-party audits and assessments
Provide risk mitigation recommendations to leadership and stakeholders
Document findings using Archer eGRC, Microsoft Office, Service Manager, and other tools
Collaborate with leadership, business units, partners, and vendors
Work independently with minimal supervision

Qualification

IT security experienceFISMA complianceEGRC toolsNIST standardsHIPAA Security & PrivacyAuditing experienceMultitaskingStakeholder engagementITIL experienceCloud securityCommunication skills

Required

5+ years of IT security experience
Experience working within a FISMA-compliant program
Hands-on experience with eGRC tools (e.g., Archer)
Strong knowledge of: FISMA, NIST, CMS MARS-E, HIPAA Security & Privacy
Experience auditing or securing: IBM System 390 / zSeries, Windows and Linux servers, Relational and NoSQL databases, Network infrastructure (firewalls, IPS, routing, switching), Web-based applications
Ability to multitask, prioritize, and meet deadlines
Strong written and verbal communication skills
Ability to engage technical and non-technical stakeholders
One or more of the following: ISC(2) (e.g., CISSP), ISACA (e.g., CISM, CISA), SANS GIAC, Other equivalent Information Security certifications

Preferred

Experience with ITIL in Information Security Management
Health Information Technology (HIT) experience
Cloud security and vendor management experience
Familiarity with: SIEM solutions, Identity and Access Management (IAM), Bizagi, Atlassian tools
Bachelor s degree in Computer Science or related field OR 10+ years of equivalent professional experience

Company

Jobs via Dice

twitter
company-logo
Welcome to Jobs via Dice, the go-to destination for discovering the tech jobs you want.
people-size0-1 employees
web-link
https://www.dice.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase